Payslip Product Sheet - Data Security, Privacy & Compliance

2022 Payslip Data Security, Privacy & Compliance

Data security

Payslip uses a wide range of technologies and practices to defend personal data from unauthorized access or malicious attacks and exploitation of data. The Payslip platform is designed to protect and preserve data integrity, ensuring that data is accurate and reliable.

Physical security Payslip uses highly-secure AWS data centers to host its SaaS platform. Read about Amazon’s AWS data center security protection here. Payslip enforces strict physical security at all of its premises via CCTV, entry and exit controls, and tracking measures. Access Control The Payslip platform uses a Zero Trust approach to ensure privacy and security of data. We operate on the Principle of Least Privilege (POLP) and Role-based Access Control (RBAC) to restrict user access to the bare minimum. Payslip tracks all access and activity for security and audit. Access is recertified on a quarterly basis. Authentication Payslip supports Single Sign-On (SSO) with Security Assertion Markup Language (SAML). SAML is an open standard widely used for authentication. We operate Two Factor Authentication (2FA) across a number of channels including email, SMS, and Authenticator app. Passwords are hashed and salted to ensure the highest level of protection. To ensure users create strong passwords, we impose password rules for employees and users of the platform. Accounts are locked after 5 failed login attempts. Smart Data Governance Payslip’s support for role-based access enables

you to restrict what your users can see and the actions they can perform. Build and enforce your own fine-grained data access control using Payslip’s powerful but intuitive policy expression language. Data Encryption All data on Payslip is obfuscated and encrypted using the strongest and most robust encryption standards. ❖ Data at rest Payslip uses the Advanced Encryption Standard (AES) with a key size of 256 bits to encrypt all data before it is stored in our database. AES 256 is a highly secure cipher and is a US Federal Government standard. ❖ Data in transit All AWS services are protected by AWS Key Management Service (AWS KMS). More information here.

Powered by